Temat: data protection - Katalog OPAC zbiorów

Skocz do pozycji: 1.

Tytuł:: Powołanie inspektora ochrony danych jako przejaw społecznej odpowiedzialności biznesu
The Appointment of the Inspector General for Data Protection Officer as a sign of corporate social responsibility
Autorzy:: Nerka, Arleta
Powiązania:: https://bibliotekanauki.pl/articles/652899.pdf
Data publikacji:: 2017
Wydawca:: Uniwersytet Łódzki. Wydawnictwo Uniwersytetu Łódzkiego
Tematy:: -
Data Protection Officer
personal data protection
personal data administrator corporate social responsibility
Opis:: The reform of the EU’s personal data protection regulations introduces the institution of the Data Protection Officer, assigning it a key role in the new personal data protection system thereto. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, builds the personal data protection model, wherein the main responsibility for adequate assessment of the risk associated with the processing of personal data and for the implementation of internal procedures to assure compliance of the referenced operations with the personal data protection regulations rests with a database administrator. Simultaneously, a database administrator should be capable of proving that he/she has duly met the requirements under the regulations, thus following the crucial rule for the processing of personal data, i.e. data accountability. The EU regulations describe the means and mechanisms to be used by a data processor to a lesser extent than those in force hitherto, focusing more on ensuring the standard of the protection of individual rights through data controllers' ethical and responsible activities. The key part in the new personal data protection model will be played by the institution of the Data Protection Officer, intended to become a real guarantor of due observance of the personal data protection regulations. In this context, the appointment of the Data Protection Officer by database administrators, not bound to do so by law, should be judged a sign of the organization's corporate social responsibility for the impact of its decisions and activities on society through transparent and ethical conduct. It is therefore essential to emphasize the important function to be performed, the authority to be had, and the necessary preparatory action to be taken by the Data Protection Officer to that effect. The new regulations should be regarded as a chance to professionalize both the individuals, serving as information security officers and, in the near future, the data controllers, as well as the entire occupational group.
-
Źródło:: Annales. Etyka w Życiu Gospodarczym; 2017, 20, 3
1899-2226
2353-4869
Pojawia się w:: Annales. Etyka w Życiu Gospodarczym
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 2.

Tytuł:: The protection of customer personal data as an element of entrepreneurs’ ethical conduct
Autorzy:: Kulesza, Ewa
Powiązania:: https://bibliotekanauki.pl/articles/653158.pdf
Data publikacji:: 2018
Wydawca:: Uniwersytet Łódzki. Wydawnictwo Uniwersytetu Łódzkiego
Tematy:: personal data protection
rights of data subjects
right to information
duties of personal data controller
GDPR
administrative fines
criminal liability
compensation for a violation of the right to personal data protection
Opis:: The right to the protection of personal data, which is part of the right to privacy, is a fundamental human right. Thus, its guarantees were included in the high-level regulations of the European Union as well as the legal norms of the EU Member States. The first Polish law regulating the protection of personal data was adopted in 1997 as the implementation of EU Directive 95/46. The law imposed a number of obligations on public and private entities which process personal data in order to protect the rights of data subjects and, in particular, to guarantee them the ability to control the correctness of processing of their personal data. Therefore, the law obliged data controllers to process data only on the basis of the premises indicated in the legislation, to adequately secure data, and to comply with the disclosure obligation concerning data subjects, including their right to correct false or outdated data or to request removal of data processed in violation of the law. However, as complaints directed by citizens to the supervisory body-the Inspector General for Personal Data Protection-showed, personal data controllers, especially those operating in the private sector, did not comply with the law, acting in a manner that violated their customers’ rights. In the hitherto existing unfair business practices of entrepreneurs, the violations of the data protection provisions that were the most burdensome for customers were related to preventing them from exercising their rights, including the right to control the processing of data, as well as the failure to provide the controller’s business address, which made it impossible for subjects whose data were used in violation of the law or for the inspecting authorities to contact the company, a lack of data security and a failure to follow the procedures required by law, the failure to secure documents containing personal data or their abandonment, a lack of updating customer data, the use of unverified data sets and sending marketing offers to deceased people or incorrect target recipients, and excessive amounts of data requested by controllers. The violations of the rights of data subjects recorded in Poland and other EU Member States-among other arguments-provided inspiration for the preparation of a new legal act in the form of the EU General Data Protection Regulation (GDPR) (which entered into force on 25 May 2018). The extension of the rights of people whose data are processed was combined in the GDPR with the introduction of new legal instruments disciplining data controllers. Instruments in the form of administrative fines and the strongly emphasised possibility to demand compensation for a violation of the right to data protection were directed in particular against economic entities violating the law.
Źródło:: Annales. Etyka w Życiu Gospodarczym; 2018, 21, 7; 27-44
1899-2226
2353-4869
Pojawia się w:: Annales. Etyka w Życiu Gospodarczym
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Informacja

Wyszukujesz frazę "data protection" wg kryterium: Temat

Źródło danych

Dostawca treści

Kolekcja

Rok wydania

Wydawca

Temat

Autor

Typ dokumentu

Język